Huge surge in coronavirus-related cybercrime

Huge surge in coronavirus-related cybercrime including fraudsters using fake NHS Covid apps to dupe victims causes 15-fold surge in scam takedowns during the pandemic

  • Experts oversaw a 15-fold rise in the removal of scams compared to 2019
  • 43 fake NHS Covid-19 apps hosted outside of official app stores were also found
  • Dr Ian Levy, technical director of the NCSC said ‘criminals have no bounds’

Cyber security experts have taken down more scams in the last 12 months than the previous three years combined – as coronavirus and NHS-themed cons rocketed during the pandemic. 

Experts oversaw a 15-fold rise in the removal of online campaigns compared to 2019, according to the National Cyber Security Centre.

There was a jump in the number of phishing attacks using NHS branding to dupe victims, with the Covid-19 vaccine rollout used as a lure via email and text message to harvest people’s personal information for fraud.

Some 43 fake NHS Covid-19 apps hosted outside of official app stores were also pulled.

Dr Ian Levy, Technical Director of the National Cyber Security Centre, revealed the cons

Dr Ian Levy, technical director of the NCSC said: ‘The big increase in Covid-19 related scams, fake vaccine shops, fake PPE shops, show – to me anyway – that criminals have no bounds on what they will abuse and the fear that they engender to try and harm and defraud people.’

HM Revenue & Customs remains the most copied brand used by fraudsters, totalling more than 4,000 campaigns, followed by the Government’s gov.uk website, and TV Licensing.

Overall more than 700,500 campaigns were taken down, accounting for 1,448,214 URLs, the NCSC’s fourth Active Cyber Defence report revealed.

HM Revenue & Customs remains the most copied brand used by fraudsters trying the cons

National Cyber Security Centre HQ in London which has analysed and foiled many attacks

Top tips to stop fraud 

– Criminals will offer ‘travel deals’ to obtain your money and information. Websites may look genuine, but subtle changes in the URL can indicate they are fraudulent. Websites may use images of luxury villas and apartments that do not exist. These are offered for rent, often at discounted prices and require deposits which are never returned.

Where possible, book directly with an established hotel or through a reputable travel company/agent that is a member of a trade body such as Abta or Atol.

– Always use the secure payment options recommended by reputable online travel providers and do not accept requests to pay separately via a bank transfer.

Where possible, use a credit card when booking holidays over £100 and up to £30,000 as you receive protection under Section 75 of the Credit Consumer Act.

– When travelling in the EU, people will be able to access emergency and medical care with a Global Health Insurance Card (GHIC). This card has replaced the European Health Insurance Card (EHIC). Criminals are asking people for payment details, when the GHIC is free. They are advertising cards on fake websites that emulate the NHS. They claim to either fast-track or manage your application process before charging an up-front fee.

The GHIC can be obtained directly via the NHS website – https://www.nhs.uk/using-the-nhs/healthcare-abroad/apply-for-a-free-uk-global-he alth-insurance-card-ghic/

– Criminals may also target people with fake ‘Covid certificates’ and ‘passports’. Often posts include a link to a fraudulent website, used to steal personal and financial information.

– Make sure you book festival and theatre tickets directly through official sellers.

 SOURCE: Take Five To Stop Fraud

Another problem highlighted were endorsement scams, which falsely claim to be supported by celebrities such as Sir Richard Branson and Martin Lewis, as well as using UK newspaper branding.

‘They’re really convincing things, they’re really well created, so it’s not surprising people fall for them,’ Dr Levy said.

The report comes ahead of the two-day CyberUK event starting on Tuesday, with experts among the NCSC due to speak, as well as Home Secretary Priti Patel, Foreign Secretary Dominic Raab and GCHQ Director Jeremy Fleming.

Lindy Cameron, chief executive of the NCSC, said: ‘Whether it has been protecting vital research into the vaccine or helping people work from home securely, the NCSC has worked with partners to protect the digital homeland during this unprecedented period.

‘I look forward to hearing from thought-leaders at CyberUK as we reflect on this period and look ahead to building a resilient and prosperous digital UK after the pandemic.’

It came a month after it was warned criminals were poised to bombard people with ticketing, travel and health insurance scams as lockdown restrictions ease.

With many people looking to book holidays and tickets to concerts or festivals, fraudsters are advertising bogus tickets at low prices as well as for events that have already sold out, UK Finance said.

It warned people to watch out for scam emails, telephone calls, fake websites and posts on social media.

To stay safe, people are reminded to follow the advice of the Take Five To Stop Fraud campaign and pause to think before parting with their money or personal information.

Katy Worobec, managing director of economic crime at UK Finance, said: ‘Criminals have been capitalising on the pandemic to commit fraud, and the easing of lockdown restrictions provides another opportunity for them to target victims.

‘As you start booking holidays and planning social activities, don’t let criminals take you for a ride.

‘Follow the advice of the Take Five To Stop Fraud campaign and always visit websites you’re buying from by typing it in to the web browser – avoid clicking on links in unsolicited emails or text messages.

‘Be wary of any requests to pay by bank transfer when buying or booking services online, and instead use a credit card or the secure payment options recommended by reputable websites.’

Source: Read Full Article